Lucene search

K

PRIOn knowledge basePRION:CVE-2013-4450

HistoryOct 21, 2013 - 5:55 p.m.

Design/Logic Flaw

2013-10-2117:55:00

PRIOn knowledge base

www.prio-n.com

3

6.9 Medium

AI Score

Confidence

High

0.08 Low

EPSS

Percentile

94.3%

The HTTP server in Node.js 0.10.x before 0.10.21 and 0.8.x before 0.8.26 allows remote attackers to cause a denial of service (memory and CPU consumption) by sending a large number of pipelined requests without reading the response.

CPENameOperatorVersion
nodejseq0.10.2
nodejseq0.8.0
nodejseq0.8.14
nodejseq0.8.12
nodejseq0.10.0
nodejseq0.8.5
nodejseq0.8.22
nodejseq0.10.1
nodejseq0.10.14
nodejseq0.10.9

Rows per page:

1-10 of 471

References

blog.nodejs.org/2013/10/18/node-v0-10-21-stable/

blog.nodejs.org/2013/10/18/node-v0-8-26-maintenance/

lists.opensuse.org/opensuse-updates/2013-12/msg00051.html

rhn.redhat.com/errata/RHSA-2013-1842.html

www.openwall.com/lists/oss-security/2013/10/20/1

www.securityfocus.com/bid/63229

github.com/joyent/node/issues/6214

github.com/rapid7/metasploit-framework/pull/2548

groups.google.com/forum/

kb.juniper.net/JSA10783

6.9 Medium

AI Score

Confidence

High

0.08 Low

EPSS

Percentile

94.3%

Related for PRION:CVE-2013-4450

redhat1 nessus4 openvas9 fedora6 cvelist1 cve1 debiancve1 veracode2 ubuntucve1 nodejsblog1 nvd1 mageia1